[Box Backup] Exception: Cipher EVPFinalFailure (5/6)
Tue, 1 May 2007 15:46:06 -0400
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
On May 1, 2007, at 2:17 PM, Eric Cronin wrote:
> Very strangely, this has been working fine for about 5 days now,
> which seems odd if it was and openssl bug.
Looking into it more, its not surprising at all, the bug is entirely
client-side having to do with encryption/decryption of blocks.
Basically the bug introduced in 0.9.8e changes EVP_encrypt/
EVP_decrypt such that they produce incompatible ciphertext from
earlier versions or other implementations of blowfish.
The correct solution is NOT what I did, unless you know you are
unable to upgrade/downgrade openssl for an extended period and need
backups in the meantime: once a new version of openssl is installed
on the client which corrects the bug your openssl 0.9.8e encrypted
blocks will now be unreadable. The best solution is to downgrade to
0.9.8d or to patch 0.9.8e's source with <http://cvs.openssl.org/
chngview?cn=15978>, that one line patch is what broke compatibility.
content-type: application/pgp-signature; x-mac-type=70674453;
content-description: This is a digitally signed message part
content-disposition: inline; filename=PGP.sig
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
-----END PGP SIGNATURE-----